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We define an equivalence relation on propositions and a proof system where equivalent propositions 
have the same proofs. The system obtained this way resembles several known non-deterministic and 
algebraic lambda-calculi. 

1 Introduction 

Several non-deterministic extensions to the A -calculus have been proposed, e.g. [6,7, 10-12,24]. In 
these approaches, the parallel composition (sometimes called the must-convergent parallel composition) 
is such that if r and s are two A -terms, the term r + s (also written r || s) represents the computation that 
runs either r or s non-deterministically. It is common to consider in these approaches the associativity 
and commutativity of the operator +. Indeed the interpretation "either r or s runs" shall not prioritise any 
of them, and so "either s or r runs" must be represented by the same term. Moreover, (r + s)t can run 
either rt or st, which is the same expressed by rt + st. Extra equivalences (or rewrite rules, depending 
on the presentation) are set up to account for such an interpretation, e.g. (r + s)t f>rt + st. This right 
distributivity can alternatively be seen as the one of function sum: (f+g)(jc) is defined pointwise as 
f(x) +g(x). This is the approach of the algebraic lambda-calculi [3,26], two independently introduced 
algebraic extensions which resulted strongly related afterwards [4, 15]. In these algebraic calculi, a scalar 
pondering each 'choice' is considered in addition to the sum of terms. 

Because of these equivalences between terms, it is natural to think that a typed version must allow 
some equivalences at the type level. Definitely, if r and s are typed with types A and B respectively, it is 
natural to expect that whatever connective tie these types in order to type r + s, it must be commutative 
and associative. 

An independent stream of research is the study of isomoiphisms between types for several languages 
(see [13] for a reference). For example, we know that the propositions A AB and BAA are equiprovable: 
one is provable if and only if the other is, but they do not have the same proofs. If r is a proof of A 
and s is a proof of B, then (r,s) is a proof of A AB while (s,r) is a proof of BAA. Despite that both 
proofs can be derived from the same hypotheses, they are not the same. In this paper, we show how 
the non-determinism arises naturally in a classic context only by introducing some equivalences between 
types. These equivalences, nevertheless, will be chosen among valid, well-known isomorphisms. In 
order to consider these isomorphic types as equivalent, we need to design a proof system such that they 
have the same proofs, or conversely, in order to consider these terms to be equivalent, we need to make 
these isomorphic types to be equivalent. Formally, two types A and B are isomoiphic if there are two 
conversion functions / of type A => B and g of type B => A, such that g(f(x)) =x for any x of type A and 
f(g(y)) = y for any y of type B. Hence, in this system the conversion functions / and g should become 
and identity function. In other words, we take the quotient of the set of propositions by the relation 
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generated by the isomorphisms of types and define proofs for elements in this quotient. In System F 
with products, which correspond to the propositional logic with universal quantifier, conjunction and 
implication, the full list of isomorphisms is known [13], and it is summarised in Figure 1. 



1. 


AAB = B AA 




6. 


VX.\/Y.A = W.VX.A 


2. 


AA(BAC) = 


(A AB) AC 


7. 


VX.A = \/Y.A[Y/X] 


3. 


A => (B AC) = 


= (A B) A (A =>■ C) 


8. 


VX.(A => B) = A => VX.B if X <£ FV(A) 


4. 


(A A B) => C = 


= A =^ (B^C) 


9. 


VX.(A AB) = VXAAVX.B 


5. 


A => (B C) 


= B^{A^C) 


10. 


VX . (A A B) = VX . VF. (A A (B [Y /X] ) ) 



Figure 1: All the type isomorphisms in propositional logic with universal quantifier, non-idempotent 
conjunction and implication 



In this work, we consider only the three first isomoiphisms of this list, because they are those that 
arise naturally when studying non deterministic processes. The impact of the others is left for future 
work. 

Usually, for the deduction rule on the right if we call r the proof of A and s that of B, we ^ g 

write r, s or (r, s) the proof of A A B. However if A A B and BAA are the same proposition, 

we get r,s and s,r to be the same term. Let us write "+" to the commutative comma 1 and A AB 
set the rule 

r:A s:B 
r + s : A AB 

In the same way, the associativity of A induces that of +. Furthermore, the isomoiphism (3) of 
Figure 1 induces the following equivalence on proofs. If r is a proof of A => B, s one of A =>• C, and t 
one of A then r + s is a proof of A => (B A C) and (r + s)t is a proof of B A C. This proof is the same as 
rt + st. Summarising, from the equivalences between types we obtained a commutative and associative 
+, which is such that the application right-distributes over it. 

Several non-classical type systems have been already proposed for the non-deterministic and alge- 
braic calculi, e.g. [1,2, 16]. In these systems there is already an equivalence relation on propositions 
such that if A = B and A types a term, then also B types it. Such equivalence is reminiscent of type 
theory [9,22] and deduction modulo [17, 19]. But here we go further, introducing an equivalence relation 
that equates types built with different connectives such as A =^> (B A C) and (A B) A (A => C), which 
is not possible there. Moreover, there is no elimination rule for conjunction in [1,2, 16]. Indeed, having 
commutativity and associativity properties in both, the sums of terms and the conjunctions of proposi- 
tions, leads to uncertainty on how to eliminate them. A rule like "r : A A B implies %\ (r) : A", would not 
be consistent. If A and B are two arbitrary types, s a term of type A and t a term of type B, then s + 1 has 
both types A A B and BAA, thus %\ (s + 1) would have both type A and type B. Hence, a naive rule would 
lead to inconsistency. The projection would project a random term of any of the types of its arguments, 
so not being a trustfully valid proof for any proposition. 

The approach we follow here is to consider explicitly typed terms (Church style), and hence make 
the projection to depend on the type: if r : A AB then 71a{v) : A. This way, we recover consistency of 
the proof system. This new form of projection entails allowing some non-determinism directly in the 
rewrite system. Indeed, if r and s have the same type A, 7Z^(r + s) both reduces to r and to s. A priori 



We could chose another symbol, however + is the one used in most non-deterministic settings. 
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this does not entail any problem; any of them is a valid proof of the same proposition A. This approach 
can be summarised by the slogan "the subject reduction property is more important than the uniqueness 
of results" [18]. Therefore the projection turns the non-deterministic choice explicit. 

We formalise all of the previously discussed concepts in Section 2, where we present the calculus 
A+, and provide some examples. Section 3 The next section is devoted to prove that our system enjoys 
the subject reduction property. In Section 4 we discuss the relation of this setting with respect to the 
algebraic approach. Finally, Section 5 concludes the paper with suggestions for future research. 

2 The calculus 

2.1 Definitions 

In this section we present the calculus A+, an explicitly typed lambda-calculus extended with a + operator 
as discussed in the introduction. We consider the following grammar of types 

A,B,C,... ::= X \ A B \ A AB | VX.A , 

where the isomorphisms (1), (2) and (3) from Figure 1 are made explicit by an equivalence relation 
between types 

AAB = BAA , (A AB) AC = AA(B AC) and A ^ (B AC) = {A ^ B) A (A ^ C) . 

The set of terms A is defined inductively by the grammar 

r,s,t ::= x A \ Xx A .r | rs | r + s | 7i A (r) | AX.r | r{A} . 

All our variable occurrences are explicitly typed, but we usually omit the superscript indicating the 
type of variables when it is clear from the context. For example we write Xx A .x instead of Xx A .x A . The 
a-conversion and the sets FV(r) of free variables of r and FV(A) of free variables of A are defined 
as usual in the A -calculus (cf. [5, §2.1]). For example FV(x A y B ) = {x A ,y 3 }. The same variable, with 
different types, is treated as a different variable. For example, the term Xx A .x B : A => B is typable in our 
system, and it is the constant function x 3 , since x 3 is free in the term Xx A .x B . We say that a term r is 
closed whenever FV(r) = 0. Given two terms r and s we denote by r[s/x] the term obtained by simul- 
taneously substituting the term s for all the free occurrences of x in r, subject to the usual proviso about 
renaming bound variables in r to avoid capture of the variables free in s. Analogously A[B/X] denotes 
the substitution of the type B for all the free occurrences of X in A, and r[B/X] the substitution in r. For 
example, {x A )[B/Y] = xW B / y l), {Xx A .r)[B/X} = XA B / x lr[B/X] and (n A (r))[B/X] = n A[B/x] {r[B/X]). 
Simultaneous substitutions are defined in the same way. Finally, terms and types are considered up to 
a-conversion. 

Each term of the language has a main type associated, which can be obtained from the type anno- 
tations, and other types induced by the type equivalences. The type system for X + is given in Figure 2. 
If FV(r) = {x A l 1 ,... we write T(r) = {A U ... ,A n }. FV({A U . . . ,A n }) is defined by U?=i FV(£i). 

Typing judgements are of the form r : A. A term r is typable if there exists a type A such that r : A. 

Lemma 2. 1 states that the typing modulo equivalences is unique. 

Lemma 2.1. Ifr : A and r : B, then A=B. 



Proof. Without rule =, the type system is syntax directed. The only rule able to modify the type of a 
term without changing it is =. □ 
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r:A r:B r:A=>B s:A 

— ~ ax [A = B] = =>! 

y :A r:B X^.r-.A^B rs : B 



r:A s:B r :Af\B r:A r:VX.A 

A 7 Ae [X£FV(F(r))] V/ V £ 

r + s:AAB n A {r):A AX.r:\/X.A r{B}:A[B/X] 



Figure 2: The type system for A + 

The operational semantics of the calculus is given in Figure 3, where there are two distinct relations 
between terms: and a symmetric relation We write and ■— >•* for the transitive and reflexive 
closures of <^ and respectively. In particular, notice that is an equivalence relation. 





Symmetric relation: 




r + s ^ s + r, 


(r + s) + t^r+(s + t), 


(r + s)t^rt + st, 


Ax^r + s) ^ A^.r + A^.s, 


If r :A 


(SAC), then n A ^ B (r)s +± n B (rs). 




Reductions: 




(Ax^.r) s --t r[s/x], 


(AX.r){A}^r[A/X], 


If r : A, then 7Ta (r + s) ^ r. 



Figure 3: Operational semantics of A_f 



2.2 Examples 

Example 2.2. We have Ax^.x : (A AS) (A AS) and so by rule = A^ AB .x : ((A AS) => A) A 

((A AS) => B), from which we can obtain 7T( A a,b)=*a(^-* A/VBj£: ) : (AAS) =>A. Let r : A AS, then 
^( AAB )^ >A (Ax 4AB .x)r : A, and notice that ^^^(A^^.^r ^((Ax^ 6 jc)r) ^ n A (r). 

Example 2.3. Let TF = Ax A .Ay B .(x + y). It is easy to check that IF : A => S => (A AS), and by rule = it 
also has the type (A => S => A) A (A => S => S). Therefore, 7Ta^b^a(TF) : A. => B => A is well typed. In 
addition, if r : A and s : S, we have 7TA=^B=>A(TF)rs : A. 

Notice that ti a ^ b ^, a (1F)ys T± 7i B ^ A (TFr)s 7TA(TFrs) ^ 7iA((Ay B .(r+y))s) 7Ta (r + s) ► r, 
which is coherent with such typing. 

Example 2.4. Let T = Ax^A/jc and F = Ax A .Ay B .y. Then T + F : (A => B =>- A) A (A =>- S =4> S), hence 
7T(a^b=^a)a(a^>b=>b)(T+F+TF) reduces non-deterministically either to T + F or to TF. Moreover, notice 
that T + F TF, hence in this very particular case, the non-deterministic choice does not play any role. 

3 Subject reduction 

In this section we prove that the set of types assigned to a term is invariant under <^ and ^-K In other 
words, Theorem 3.2 states that if r is a proof of A, any reduction fired from r will still be a proof of A. 

The substitution lemma below will be the key ingredient in the proof of subject reduction. It ensures 
that when substituting types for type variables or terms for term variables, in an adequate manner, the 
typing judgements remain valid. 

Lemma 3.1 (Substitution). Ifr : B and s : A, then rfs/x 4 ] : B. Also, Ifr : A, then r[B/X] :A[B/X\ 



Proof. By induction over r for the first result and over the type derivation for the second. 



□ 
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Now we can prove the subject reduction property, ensuring that the typing is preserved during reduction. 
Theorem 3.2 (Subject reduction). Ifr — > s andr : A, then s : A (where — > is either or 

Proof. By induction over the reduction relation. We give only two interesting cases. 
Rule %^ B (r)s +± 7tg(rs), with r : A =>- (B AC). Let 7r A ^s(r)s : D, then n A ^ B (r) ■ E D and s : E. But 
then E = A and D = B, because clearly, the main type for Ka^b(-) is A => B, so r : (A^>B)AF, however 
since r:A^>(6AC), we have F = A => C. So, by rule =>■£, rs : B A C. We conclude by rule A#. For 
the inverse direction, let 7Z#(rs) : D. Then D = B and rs : B A£, so r : F => (B AE) and s : F. Hence, 
since r : A =>■ (B A C), by Lemma 2.1, we have F = A and £" = C, so 71^=^ (r) : A B, from which, we 
conclude 7rA^,e(r) s : B. We conclude by rule =. 

Rule (AAr) s -4 r[s/x]. Let (A^.r)s : B, then A^.r : C =>- D and s : C, with D = B. Then r : £, with 
A => E = C => D. Notice that, since A => E = C => D, it must be A = C and E = D. Then, by rule =, 
s : A, and so, by Lemma 3.1, rfs/V 4 ] : E, and since E = D = B, by mle =, we obtain r[s ( /V l ] : B. □ 



4 From non-determinism to probabilities 

In [3] and [26] two algebraic extensions of the untyped lambda-calculus are introduced, which we call 
Aii n and A a i g respectively. In these settings, not only the + operator is present, but also a scalar pondering 
each choice. Hence, if r and s are two possible terms, so is the linear combination of them a.r + j8.s, 
with a,j8 some kind of scalars (taken from a generic ring in X\[ a or from R-° in A a i g ). Both these calculi 
identify the term (r + s)t with rt + st, either with a rewrite system or an equality, and + is associative 
and commutative. Also, the scalars interact with the +, e.g. r + r f-> 2.r. By restricting the scalars to 
positive real numbers, or even to natural numbers, one possible interpretation is that the scalars give the 
probability of following one possible path (after 'normalising' the scalars, i.e. dividing over the total 
amount in order to sum up to 1). In this way, the term 2.r + s is twice more likely to run r than s. 

Indeed, in [1, §6] the type system B for Ai; n is proposed, which can decide whether a superposition 
is a probability distribution (i.e. it can check that the sum of terms is up to 1). Such a system includes 
scalars at the type level, reflecting those in the terms, so a.r has type a.A whenever r has type A. This 
provides a powerful tool to account for the scalars within the terms, however it entails a 'non-classical' 
extension of System F with scalars pondering the types. In such a formalism, there is no possibility to tie 
terms with different types : if r and s have both type A , then a . r + j8 . s have type ( a + /3 ) .A , however if the 
types of r and s differ, the previous term cannot be typed. That weakness is solved in [2], where a more 
powerful system is introduced, with a type system also allowing for linear combination of types, just like 
for terms. In both these systems, while powerful, it is hard to establish a connection with a well-known 
logic. That is precisely the goal of [8], where a more 'classic' system is developed, with no scalars 
at the type level. However it carries some costs: first, it is only meant for positive real scalars (which 
anyway is enough for a 'probabilistic' interpretation), and more importantly, the type system gives just 
an approximation, an upper bound, of the scalars in the terms. 

We could envisage extending A + with a more thorough projection where 7TA(a.r + /3.s) would output 
either r, with probability a, or s with probability /3. However, 

even when the scalars are not explicitly written, the probabilities ™ A ( r + (s + 1) + 1) 

are present. The following example is clarifying. 

Let r : A, s : A and t : A. Then, the reductions depicted in / /■',*% 

/ 7^4 (S + t) 

the diagram at right are possible. If we consider Ka making 
an equiprobable choice instead of a non-deterministic one, it is 

r 
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clear that t have more probability to be reached, followed by r, 
and the less likely is s. 

Indeed, we can calculate the global probability of reach- 
%a (r + %a (s + 1) + 1) j n g possibility by labelling the reductions with its local 



r 




probability as shown in the diagram at left, from where just 
by summing up the labels reaching a term, and multiplying 
those in the same path, we can easily check that the term r has 
probability \ of being reached, the term s probability g and 
t the term t probability \. Hence, this term would be expressed 



with scalars as 4r + is + jt according to the previously dis- 
cussed interpretation. Therefore, A + could be seen as a sort 

of algebraic calculus, with implicit scalars taken from Ql 01 !, typed with a standard type system. These 

ideas will be fully developed in a future research. 

5 Conclusions and future work 

5.1 Conclusions 

In this paper we have introduced k + , a proof system for second order prepositional logic with an associa- 
tive and commutative conjunction, and implication. In this system, isomorphic propositions get the same 
proofs. At this first step we only consider three isomorphisms, namely commutativity and associativity 
of the conjunction, and distributivity of implication with respect to conjunction. We use the symbol + 
to put together the proofs of different propositions, so r + s becomes a proof of A A B, if r is a proof of 
A and s a proof of B. Such a symbol is commutative and associative, and application is right-distributive 
with respect to it, to account for the isomorphisms of propositions. 

This construction entails a non-deterministic projection where if a proposition has two possible 
proofs, the projection of its conjunction can output any of them. For example, if r and s are two possible 
proofs of A, then %a (r + s) will output either r or s. 

In several works (cf. [21, §3.4] for a reference), the non-determinism is modelled by two operators. 
The first is normally written +, and instead of distributing over application, it actually makes the non- 
deterministic choice. Hence (r + s)t reduces either to rt or to st [10]. The second one, denoted by ||, does 
not make the choice, and therefore (r || s)t reduces to rt || st [12]. One way to interpret these operators 
is that the first one is a non-deterministic one, while the second is the parallel composition. Another 
common interpretation is that + is a may-convergent non-deterministic operator, where type systems 
ensure that at least one branch converges, while || is a must-convergent non-deterministic operator, where 
both branches are meant to converge [7, 14]. In our setting, the + operator in A + behaves like ||, and an 
extra operator (%) induces the non-deterministic choice. The main point is that this construction arose 
naturally just by considering some of the isomorphisms between types as an equivalence relation. In 
order to ensure that our system is must-convergent, we shall prove its strong normalisation, which is left 
for future research. 

5.2 Open questions and future research 

As mentioned in Section 4, the calculus A + has implicit scalars on it, which can convert this non- 
deterministic setting into a probabilistic one. The original motivation behind X\ m [3] and its vectorial 
type system [2] was to encode quantum computing on it. A projection depending on scalars could lead to 
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a measurement operator in a future design — after other questions like deciding orthogonality [25] have 
been addressed in that setting. This is a promising future direction we are willing to take. 

In order to follow such direction, a first step is to move to a call-by-value calculus, where r(s + 
t) <^ rs + rt (because a non-deterministic choice yet to make, is not considered to be a value). The 
reason to move to call-by-value is explained with the following example. Consider for instance the term 
8 = Xx.xx applied to a sum r + s. In call-by-name it reduces to (r + s)(r + s) while in a call-by-value 
strategy (Ai; n ) the same term reduces to 5r + 5s first, and then to rr + ss. If seeking for a quantum 
interpretation, reducing 8 (r + s) into (r + s) (r + s) is considered as the forbidden quantum operation of 
"cloning" [27], while the alternative reduction to rr + ss is seen as a "copy", or CNOT, a fundamental 
quantum operation [23]. 

In order to account for such an equivalence, r(s + 1) <^ rs + rs, we would need an equivalence at 
the type level such as (A AS) => C = (A => C) A (B =4* C), however it is clearly false. A workaround 
which have been used already in the vectorial type system [2] is to use the polymorphism instead of 
an equivalence. If r have type VX.X =>■ Cx, then we can specialise X to the needed argument. Indeed, 
VX.X =>■ Cx entails both A => Ca and B =>■ C#, which can latter be tied by a conjunction. 

Another prominent future work is to determine what is needed for the remaining isomorphisms 
(cf. Figure 1). In a work by Garrigue and Ait-Kaci [20], the isomorphism A AS = B A A has been 
indirectly treated by combining it with currying: (AAS)=>C = A=^B=^C (cf . isomorphism (4) of Fig- 
ure 1), from which it can be deduced the isomoiphism A => (B =>■ C) = B =>■ (A =4* C) (cf. isomorphism (5) 
of Figure 1). Their proposal is the selective A -calculus, a calculus including labellings to identify which 
argument is being used at each time. Moreover, by considering the Church encoding of pairs, isomor- 
phism (5) implies isomorphism (1) (commutativity of A). However their proposal is completely different 
to ours, and the non-determinism cannot be inferred from the selective A -calculus. 

Acknowledgements. We would like to thank Frederic Blanqui, Michele Pagani and Giulio Manzonetto 
for enlightening discussions. 
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